Report - vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design

Report Overview

Submitted URL
vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
IP
104.21.62.103
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 07:59:48
Access
public
Website Title
Affiliate Program
Final URL
vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
vaushaugremu.com	unknown	unknown	No data	No data	1.5 kB	16 kB	104.21.62.103
cdn.tailwindcss.com	422202	2017-07-20	2018-07-09	2024-04-18	845 B	695 kB	172.67.41.16
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	3.0 kB	80 kB	142.250.74.164
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-04-17	2.4 kB	641 kB	142.250.74.35
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-18	511 B	16 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	vaushaugremu.com	Sinkholed
2024-04-18	medium	vaushaugremu.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2	690 B	2024-04-18	2024-04-18
Pretty URL vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2 IP 104.21.62.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 09:59:54 Last Seen2024-04-18 09:59:54 Times Seen1 Hash fc96f6ee8a4c5eaafc50c8f564ad7367 f563d97162e3a4ba8d95fedf6aec24ebe526adbb 8c3319fdb4c21a9b51198222a82ef16dfe924c183d8ebe64432d303b2f5a71a0 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k	69 B	2023-03-07	2024-05-01
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-01 02:08:46 Times Seen100122 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4	0 B	2023-03-07	2024-05-01
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-01 02:48:00 Times Seen37235056 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.tailwindcss.com/?plugins=forms	376 kB	2024-04-18	2024-04-18
Pretty URL cdn.tailwindcss.com/?plugins=forms IP 172.67.41.16 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 09:59:54 Last Seen2024-04-18 09:59:55 Times Seen2 Hash ed7c2cfd216843be7a9ffbebf582eec4 98c2e883801222a96dd8324cd7137deb0ccb1b8e eec9b30cd3a150573f7dfa9caf9ae1cafd320cbabb5735a5c6ada50601791bed Loading...

	vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2	5.4 kB	2024-04-18	2024-04-18
Pretty URL vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2 IP 104.21.62.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 09:59:54 Last Seen2024-04-18 09:59:54 Times Seen1 Hash 85936c241950129db1ac10c31538ffbb 244ef70f1c2fbbd4256794a7ea58078532ba9ff8 ef2ffe36bc982a180e065c256513a39c97d88be8b8d50f69e7403690380fbb9e Loading...

	www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js	511 kB	2024-04-04	2024-04-18
Pretty URL www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-04 06:23:43 Last Seen2024-04-18 16:42:06 Times Seen5623 Hash e9ccb3dbde79ba5ffdf9cad4b32d59fd 3a8cd67adc7c885bdf683f1e7f491e6a4a50679f 8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137 Loading...

	www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js	18 kB	2024-04-11	2024-04-22
Pretty URL www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-11 20:49:17 Last Seen2024-04-22 06:12:15 Times Seen431 Hash b38e10fee62caf0053645e3116660cce 2259de80ed88610f583a830443c604877466194b 3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf Loading...

	www.google.com/recaptcha/api.js?onload=onload&render=explicit	901 B	2024-04-18	2024-04-18
Pretty URL www.google.com/recaptcha/api.js?onload=onload&render=explicit IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 09:59:54 Last Seen2024-04-18 09:59:54 Times Seen1 Hash e2257756cd1837d3eb72bd6308a6cbed 03c485bb7aad24587419d921baebad3801dc42b7 25343615976f00fc925a71bf839d47c415060ac8e8f84a05a082f2e70ef39e51 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k	37 kB	2024-04-18	2024-04-18
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 09:59:54 Last Seen2024-04-18 09:59:54 Times Seen1 Hash 027c611d960f38e3d9fe6cdf1f61564e bd3acd917be4a0f9a1846b33e36f5a79712e982b a4ebf95b9476efb0306c628c24c5b43c898797ed50449f4aa52e81da712fb9dc Loading...

	vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2	461 B	2024-04-18	2024-04-18
Pretty URL vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2 IP 104.21.62.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 09:59:54 Last Seen2024-04-18 09:59:54 Times Seen1 Hash 407365458777bea580d4aef20262ccfb a9b84888a4236ebdd40fefe282196668323fffb2 6fbc4cad3ca8fef68e36c76a87659501ba85e46990ca17b2cb412e31c9a67bb3 Loading...

		Size	First Seen	Last Seen
	#1 Eval - ccbe54243991a20ed7f69b895db3b808	22 B	2024-04-11	2024-04-22
Pretty Observations First Seen2024-04-11 20:49:17 Last Seen2024-04-22 06:12:15 Times Seen201 Hash ccbe54243991a20ed7f69b895db3b808 e9faaa32fb38da0a5d7e1ff4ba0f3be8eb151c08 41487dad53483bea2ce188e53b0c26c3d4281e8a224b995e68a246874d78808d Loading...

	#2 Eval - e11857d284fdb612eae7d97247ddb6ad	62 B	2024-04-11	2024-04-22
Pretty Observations First Seen2024-04-11 20:49:17 Last Seen2024-04-22 06:12:15 Times Seen202 Hash e11857d284fdb612eae7d97247ddb6ad e2f2fd25a800daf8c8ae5e1196f77981324ea581 8a88396fa765a26184de8ff3405ffed050a95399c9cd7a420b963ed76991bc94 Loading...

	#3 Eval - f521295db4f7cf9a5553dde6900f1a20	24 kB	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 09:59:55 Last Seen2024-04-18 09:59:55 Times Seen1 Hash f521295db4f7cf9a5553dde6900f1a20 b23d0f49b5765ee9b5920ea2068e5499cafe639d 241e171c8fadad5d0ec87cc9313f864d328d046bb4a18f076812f49218fed91c Loading...

	#4 Eval - ec9e30719c448c5f6435a063d1c4ca15	22 B	2024-04-11	2024-04-22
Pretty Observations First Seen2024-04-11 20:49:17 Last Seen2024-04-22 06:12:15 Times Seen201 Hash ec9e30719c448c5f6435a063d1c4ca15 607e4c429800b47e8136b85f3ac864957aa0791c 0386b8be933719baab1b7d5cb8041701ad376e65e2b07d4691a72de4752444de Loading...

HTTP Transactions (15)

URL IP Response Size

cdn.tailwindcss.com/3.4.3?plugins=forms@0.5.7

172.67.41.16

200 OK

318 kB

URL GET HTTP/2
cdn.tailwindcss.com/3.4.3?plugins=forms@0.5.7
IP
172.67.41.16:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Certificate
IssuerCloudflare, Inc.
Subjecttailwindcss.com
Fingerprint5F:87:FB:92:D4:93:DA:09:E3:5B:EF:92:CE:2F:47:18:3A:8A:C7:49
ValidityTue, 07 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (52292)
Size
318 kB (318152 bytes)
Hash
ed7c2cfd216843be7a9ffbebf582eec4
98c2e883801222a96dd8324cd7137deb0ccb1b8e
eec9b30cd3a150573f7dfa9caf9ae1cafd320cbabb5735a5c6ada50601791bed

HTTP Headers

GET /3.4.3?plugins=forms@0.5.7 HTTP/1.1
Host: cdn.tailwindcss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vaushaugremu.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:59:21 GMT
content-type: text/javascript
cache-control: max-age=31536000
content-encoding: br
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: cle1::iad1::btkcz-1711569353453-10121d31a556
last-modified: Wed, 27 Mar 2024 19:55:53 GMT
cf-cache-status: HIT
age: 1849653
vary: Accept-Encoding
server: cloudflare
cf-ray: 87631d6fe80d56c9-OSL
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k

142.250.74.164

200 OK

53 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
HTML document, ASCII text, with very long lines (37121)
Size
53 kB (52998 bytes)
Hash
bb122e5328b9081841e3736040389f0c
ee9d981426a2a64089ba4119836e6226313625e5
cdb6fc6333e66bf09948e58ba98467d56adf1d9f3a79477327813b602893cf62

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vaushaugremu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 07:59:22 GMT
content-security-policy: script-src 'nonce-T4aoleb5Niybf64jivSQ0w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js

142.250.74.35

200 OK

203 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
JavaScript source, ASCII text, with very long lines (554)
Size
203 kB (203369 bytes)
Hash
e9ccb3dbde79ba5ffdf9cad4b32d59fd
3a8cd67adc7c885bdf683f1e7f491e6a4a50679f
8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137

HTTP Headers

GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 451747
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api.js?onload=onload&render=explicit

142.250.74.164

200 OK

8.1 kB

URL GET HTTP/2
www.google.com/recaptcha/api.js?onload=onload&render=explicit
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06
ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT

File type
gzip compressed data
Size
8.1 kB (8130 bytes)
Hash
349271d8d4bb10de8d23f8d88a4e97ce
401e3ca49a3332e6cf3ed4d3f6f648b4ef83cf8d
a0574fcb930d02e9bfa9b7976016ef4440a397ac76d8cd036acdfe3678546725

HTTP Headers

GET /recaptcha/api.js?onload=onload&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vaushaugremu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Thu, 18 Apr 2024 07:59:21 GMT
date: Thu, 18 Apr 2024 07:59:21 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 18980
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js

142.250.74.35

200 OK

203 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
JavaScript source, ASCII text, with very long lines (554)
Size
203 kB (203369 bytes)
Hash
e9ccb3dbde79ba5ffdf9cad4b32d59fd
3a8cd67adc7c885bdf683f1e7f491e6a4a50679f
8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137

HTTP Headers

GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 451748
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js

142.250.74.164

200 OK

7.4 kB

URL GET HTTP/3
www.google.com/js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
JavaScript source, ASCII text, with very long lines (17636)
Size
7.4 kB (7423 bytes)
Hash
b38e10fee62caf0053645e3116660cce
2259de80ed88610f583a830443c604877466194b
3c1aaa03c8c58f4c0b10459a47b71834ee35e84cd3b82d025f639cfbf8fba9bf

HTTP Headers

GET /js/bg/PBqqA8jFj0wLEEWaR7cYNO416EzTuC0CX2Oc-_j7qb8.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7423
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:39 GMT
expires: Wed, 16 Apr 2025 09:54:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 165884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:54:07 GMT
expires: Thu, 25 Apr 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 18316
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
ASCII text, with very long lines (56398), with no line terminators
Size
25 kB (24606 bytes)
Hash
eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050

HTTP Headers

GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:54:26 GMT
expires: Wed, 16 Apr 2025 09:54:26 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/css
vary: Accept-Encoding
age: 165897
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js

142.250.74.35

200 OK

203 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9
ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT

File type
JavaScript source, ASCII text, with very long lines (554)
Size
203 kB (203369 bytes)
Hash
e9ccb3dbde79ba5ffdf9cad4b32d59fd
3a8cd67adc7c885bdf683f1e7f491e6a4a50679f
8f2c6777c7ccc01ab67290fa8acd5a4c4866be64129f39dfaeb9197dfa15e137

HTTP Headers

GET /recaptcha/releases/rz4DvU-cY2JYCwHSTck0_qm-/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 203369
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 02:30:15 GMT
expires: Sun, 13 Apr 2025 02:30:15 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 29 Mar 2024 04:30:36 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 451748
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-

142.250.74.164

200 OK

102 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
701c50fe2f9d8cfca61542dee7684552
952a04f81a291e11f5d4ecd7364a3840412ba65e
9fc5dfc54de18e9c98733bbea6ebdcbc1f01c0b23f985556f24684ee96dc0582

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm- HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4&co=aHR0cHM6Ly92YXVzaGF1Z3JlbXUuY29tOjQ0Mw..&hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&size=normal&cb=he00ckfmz10k
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 18 Apr 2024 07:59:22 GMT
date: Thu, 18 Apr 2024 07:59:22 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdn.tailwindcss.com/?plugins=forms

172.67.41.16

302 Found

376 kB

URL GET HTTP/2
cdn.tailwindcss.com/?plugins=forms
IP
172.67.41.16:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Certificate
IssuerCloudflare, Inc.
Subjecttailwindcss.com
Fingerprint5F:87:FB:92:D4:93:DA:09:E3:5B:EF:92:CE:2F:47:18:3A:8A:C7:49
ValidityTue, 07 Nov 2023 00:00:00 GMT - Tue, 05 Nov 2024 23:59:59 GMT

File type

Size
376 kB (376047 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?plugins=forms HTTP/1.1
Host: cdn.tailwindcss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vaushaugremu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 18 Apr 2024 07:59:21 GMT
cache-control: max-age=14400
location: /3.4.3?plugins=forms@0.5.7
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: cle1::iad1::rgjsb-1713426434728-c8af496e569b
cf-cache-status: HIT
age: 499
vary: Accept-Encoding
server: cloudflare
cf-ray: 87631d6fcfeb56c9-OSL
X-Firefox-Spdy: h2

vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2

104.21.62.103

200 OK

14 kB

URL User Request GET HTTP/2
vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
IP
104.21.62.103:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectvaushaugremu.com
Fingerprint78:C5:DA:54:37:0C:87:64:90:AC:B9:E8:5F:48:51:C8:13:01:5C:C3
ValidityThu, 21 Mar 2024 09:40:34 GMT - Wed, 19 Jun 2024 09:40:33 GMT

File type
HTML document, ASCII text, with very long lines (621)
Size
14 kB (13836 bytes)
Hash
f2a92de310c2638e4919d8198a6546eb
60513cdc5134192de19fa6d6700e866db8af9a42
b6b714cba14226518f16147c0988a5ab3c2786a4e2d2ec8b0063452b9cd452da

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2 HTTP/1.1
Host: vaushaugremu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 07:59:21 GMT
content-type: text/html
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FY%2FKAuyDsl5LIap%2BzGY2WKEA9Vx4ca8l4XL938LAYMy9RK3WDQC4lEPOvlygo1WliL3qmUa4stH%2F8sAhMtr4Cpe%2FbyzJhSWKkUGGzilMknROiRTMDHHsok2xhOpkoNn5fKgR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87631d6da97656ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

vaushaugremu.com/favicon.ico

104.21.62.103

200 OK

1.2 kB

URL GET HTTP/3
vaushaugremu.com/favicon.ico
IP
104.21.62.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Certificate
IssuerGoogle Trust Services LLC
Subjectvaushaugremu.com
Fingerprint78:C5:DA:54:37:0C:87:64:90:AC:B9:E8:5F:48:51:C8:13:01:5C:C3
ValidityThu, 21 Mar 2024 09:40:34 GMT - Wed, 19 Jun 2024 09:40:33 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
668ba1a9fa1890ba16cb8adc28d3dad8
5e35223b2541265114eaf61b9da2556c812fea17
7746cf1b553433822522f2dc432f55fe64eee1f1cf823ef6adfde02e58e1d7e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: vaushaugremu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 07:59:22 GMT
content-type: image/x-icon
last-modified: Wed, 17 Apr 2024 09:06:30 GMT
vary: Accept-Encoding
etag: W/"661f9116-47e"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Du9543u1Pqn1K8QSc8eco9yRz8WFFElWkBSFyLImWJHTb15f9cCVn1FC6YekXFaZ6%2BEysfmehqs1klGVYCjGFBQoydd8omTfjx%2BNl4vYujdAPKS8vNi3QU7UJaqjYWarfprT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87631d73bcf31bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4

142.250.74.164

200 OK

7.4 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://vaushaugremu.com/affiliate.html?ref=https://vaushaugremu.com/sweeps-survey.html?offer_id=95600223&z=7336590&s=804734038972829833&b=20757262&campaignid=8093743&var=137_371&ymid=804734038972829833&var_3={var_3}&geo=NG&device=desktop&os=windows&ip=105.112.214.158&country=NG&browser=chrome&testinapp=5896608&design_id=2
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D
ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT

File type
HTML document, ASCII text, with very long lines (7675), with no line terminators
Size
7.4 kB (7444 bytes)
Hash
71a923ea09e378b40acd7406204652ea
ddbdef1e5c69c3825b88927b5c070afecd2246c4
df8f3f21821b52ce7cac4b50f48957a856229d4ce12abd20343262f110745fde

HTTP Headers

GET /recaptcha/api2/bframe?hl=en&v=rz4DvU-cY2JYCwHSTck0_qm-&k=6LfwuRwlAAAAAEmLQuxeYVxwMF-C5-789IfpS8z4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vaushaugremu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 07:59:23 GMT
content-security-policy: script-src 'nonce-NNdlKW-4XnXoyy_i8Tz3Dg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML